CVE-2025-14325

HIGH

Firefox < 146.0 and 140.6-140.* - Type Confusion in JIT JavaScript Engine

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-14325. PoCs published by WostGit.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2025-14325, targeting a vulnerability in Firefox's JavaScript engine (SpiderMonkey) related to SharedArrayBuffer manipulation. The exploit leverages a type confusion bug to achieve arbitrary memory corruption, potentially leading to RCE.

Description

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.

Exploits (1)

nomisec WORKING POC
by WostGit · poc
https://github.com/WostGit/cve-2025-14325-full-repro

This repository contains a functional exploit PoC for CVE-2025-14325, targeting a vulnerability in Firefox's JavaScript engine (SpiderMonkey) related to SharedArrayBuffer manipulation. The exploit leverages a type confusion bug to achieve arbitrary memory corruption, potentially leading to RCE.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: Mozilla Firefox (pre-patch version, likely 145.x)
No auth needed
Prerequisites: Pre-patch Firefox build (commit 8f3a2b7c9d1e4f5a6b7c8d9e0f1a2b3c4d5e6f7a or similar) · SharedArrayBuffer enabled · JavaScript shell environment
devstral-2 · analyzed Apr 10, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v3 7.3
EPSS 0.0029
EPSS Percentile 20.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-843
Status published
Products (8)
mozilla/firefox < 140.6.0
mozilla/firefox < 146.0
Mozilla/Firefox 140.6 - 140.*
Mozilla/Firefox 146
mozilla/thunderbird < 140.6.0
mozilla/thunderbird < 146.0
Mozilla/Thunderbird 140.6 - 140.*
Mozilla/Thunderbird 146
Published Dec 09, 2025
Tracked Since Feb 18, 2026